Question: 8 . Create an organization - wide policy defining and authorizing a security or computer incident response team to have full access to and authority

8. Create an organization-wide policy defining and authorizing a security or computer incident response team to have full access to and authority over all IT systems, applications, data, and physical IT assets when a security or other incident occurs. Create this for the Sunshine Credit Union, which has the following characteristics:
The organization is a regional XYZ Credit Union that has multiple branches and locations throughout the region;
Online banking and use of the Internet are the banks strengths, given its limited human resources;
The customer service department is the organizations most critical business function;
The organization wants to be in compliance with the Gramm-Leach-Bliley Act (GLBA) and IT security best practices regarding its employees;
The organization wants to monitor and control use of the Internet by implementing content filtering;
The organization wants to eliminate personal use of organization-owned IT assets and systems;
The organization wants to monitor and control use of the e-mail system by implementing e-mail security controls;
The organization wants to implement this policy for all the IT assets it owns and to incorporate this policy review into its annual security awareness training;
The organization wants to create a security or computer incident response team to deal with security breaches and other incidents if attacked providing full authority for the team to perform whatever activities are needed to maintain chain of custody in performing forensics and evidence collection;
The organization wants to implement this policy throughout the organization to provide full authority during crisis to the CIRT team members over all physical facilities, IT assets, IT systems, applications, and data owned by the organization.
Using the following template, in your text document, create a computer incident response policy granting team members full access and authority to perform forensics and to maintain a chain of custody for physical evidence containment.

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Programming Questions!

Q:

Create an incident response policy that grants team members full access and authority to perform forensics and maintain a chain of custody for physical evidence containment. Create this policy for...

Q:

Question: It is a common case that institutions to collect and store the personal data of staff and students from around the world, what are the additional considerations for Personally Identifiable...

Q:

For the following task you must demonstrate consistent performance in conditions that are safe and replicate the workplace. Noise levels, production flow, interruptions and time variances must be...

Q:

Computer system security: Access Controls and Security Mechanisms Data Breach an All-Too-Often Occurrence As Clive started his typical Wednesday morning routine, he was checking his e-mail. He saw a...

Q:

Scenario Study the scenario and complete the question ( s ) that follow: Ozow Corporation Windows Server Deployment Ozow Corporation, a rapidly growing technology company, has recently expanded its...

Q:

** Please with an explanation if possible ** *Please answers all or leave it to another expert* Question #:1 Confidential corporate data was recently stolen by an attacker who exploited data...

Q:

** Please with an explanation if possible ** *Please answers all or leave it to another expert* Question #:1 A security administrator is creating a risk assessment on BYOD. One of the requirements of...

Q:

** Please with an explanation if possible ** *Please answers all or leave it to another expert* Question #:1 A security administrator is creating a risk assessment on BYOD. One of the requirements of...

Q:

Develop a list of five quality standards that your team could use to select the cybersecurity training and awareness vendor that will be contracted to train the 20 trainers. AutoSave ( OFF A A . G...

Q:

Hospital emergency response checklist An all-hazards tool for hospital administrators and emergency managers Supported by The European Commission Health Programme 2008-2013 Together for Health...

Q:

(i) Use the data in HPRICE1.RAW to obtain the heteroskedasticity-robust standard errors for equation (8.17). Discuss any important differences with the usual standard errors. (ii) Repeat part (i) for...

Q:

How do MNEs control and evaluate their operations? Describe the basic process. Then discuss some of the common methods of measurement.

Q:

1 : 4 2 : 1 4 remaining Question 5 0 ( 2 points ) The balance in the Accumulated Depreciation account represents the A ) amount charged to expense in the current period. B ) amount charged to expense...

Q:

An issue of a magazine contained the following statement. Dropping less than two inches per mile after emerging from the mountains, a river drains into the ocean. One day's discharge at its mouth,...